[RESOLVED] MS Web Application Proxy used with SfB caused a Error 502

Abstract: You are using a MS Web Application Proxy as reverse proxy (and ADFS) and when a anonymous user try to join via SfB (=Skype for Business) Web App, he got the error message "Sorry that didn´t work". Additional to that an external mobile client (e.g. Skype for Business on iOS) could´t connect.

To troubleshoot that issue you installed Fiddler on the affected PC and configured it to decrypt SSL traffic. Inside the fiddler log you found (for UCWA) the following:

<h2>502 - Web server received an invalid response while acting as a gateway or proxy server.</h2> <h3>There is a problem with the page you are looking for, and it cannot be displayed. When the Web server (while acting as a gateway or proxy) contacted the upstream content server, it received an invalid response from the content server.</h3>

Troubleshooting steps:

1.) Check if you see some issues with the Microsoft Remote connectivity Analyzer (https://testconnectivity.microsoft.com) via a testuser and fix those.

2.) Make sure that the MS Web Application Proxy can reach the SfB fronted server via 4443 via Telnet. If not check the firewall.

3.) Check if you can open the default website on your SfB frontend server

https://yourlyncfrontend.yourdomain.com:4443

On your MS Web Application Proxy (if you have multiple SfB frontend server try each of them). If you got a SSL certificate error you need to install the root certificates on the MS Web Application Proxy from this server.

4.) In some situations it might needed to set the DisableTranslateUrlInRequestHeaders to true.

4a.) At first find the web application proxy application which fits to the URL in your fiddler log via: